Invoke-AzResourceConfigScanner.ps1 is a PowerShell script designed to scan and retrieve security related configurations for various Azure resources, including Key Vaults, Storage Accounts, Function Apps, and App Services.
- Azure CLI installed and configured.
- Appropriate permissions to access the Azure resources.
Specifies the type of Azure resource to scan. Options are AppServices, FunctionApps, KeyVaults, and StorageAccounts.
The script is modularized into separate files for each resource type, located in the modules folder:
modules/AppServices.ps1: Contains functions to scan and retrieve configurations for Azure App Services.modules/FunctionApps.ps1: Contains functions to scan and retrieve configurations for Azure Function Apps.modules/KeyVaults.ps1: Contains functions to scan and retrieve configurations for Azure Key Vaults.modules/StorageAccounts.ps1: Contains functions to scan and retrieve configurations for Azure Storage Accounts.
- Clone the repository.
- Navigate to the directory containing the scripts.
- Run
Invoke-AzResourceConfigScanner.ps1and follow the prompts to select the type of resource you want to scan.
The script outputs the configuration details of the specified Azure resource type to the console, highlighting important settings with color-coded messages.
This project is licensed under the MIT License. See the LICENSE file for more details.